Data Migration a Security Threat: Varonis

October 2, 2012

Image representing Varonis Systems as depicted...

Image via CrunchBase

Organizations are potentially exposing themselves to data breaches during migrations, and many don’t have confidence their data is secure, according to a Varonis survey.While 95 percent of organisations move data at least once per year, 65 percent of companies said they are not confident sensitive data was protected during a migration, according to an August survey of C-Level IT executives conducted by data governance software specialist Varonis Systems. The survey found 96 percent of respondents reported concerns when performing data migrations, with many leaving their data overexposed and vulnerable. The results suggest a growing data security problem that could affect the vast number of businesses performing data migrations and consolidations.

Organizations most commonly move data from one file server to another or to network attached storage (NAS) (80 percent), between domains (44 percent) and from file shares to SharePoint (40 percent). Two-thirds of organizations report that they usually move more than 1TB of data at a time, for a variety of reasons, including infrastructure upgrades and organizational changes–for example, a merger or acquisition. On the security side, 35 percent of those surveyed reported that they were very confident sensitive data would only be accessible to the right people during a migration.

“The survey underscores that maintaining who has access to what is an ongoing problem for organizations. The scale of the problem that organizations face when moving terabytes of data may be surprising, as a typical terabyte contains about 50,000 folders, and of those folders about 5 percent, or 2,500 folders, have unique permissions,” David Gibson, Varonis vice president of strategy, said in a prepared statement. “An average access control list (ACL) contains three to five security groups, and a typical group contains anywhere from five to 50 users, as well as other groups that contain even more users and groups. Let’s say each access control list represents 5 minutes of work to re-create—that’s over 200 hours of work per terabyte of data moved.”

About one-third of respondents described themselves as being very confident that sensitive data will be accessible to the correct people during a move, but only 20 percent reported that maintaining permissions is not an issue. Seventeen percent of respondents reported it as a significant issue, 49 percent reported it as a slight-to-moderate issue and a worrying 14 percent said they are aware of the issue but have not addressed it.

“Data and domain migrations are a big part of IT’s day-to-day activities. Organizations already face challenges maintaining availability, data integrity and confidentiality during a migration, not to mention identifying the data that should be moved and who it belongs to,” the report concluded. “With no slowdown in data growth in sight, IT organizations should anticipate that more migrations and archival projects will need to fit into their already busy schedules.”

Data security fears also are affecting adoption of cloud services, an earlier Varonis report found. That survey revealed that while 80 percent of companies do not allow their employees to use cloud-based file synchronization services, 70 percent of companies would use these services if they were as robust as internal tools. Only 20 percent of survey respondents said they currently allow file synchronization technology services due to fears of data leakage, security breaches and compliance issues.

Thanks to http://www.eweek.com

 

3 Comments | Application Hosting, Managed Service Hosting, Retail IT Solutions | Tagged: , , , , , , , | Permalink
Posted by david ricketts

Cloud Security and offsite back up

May 3, 2012

When looking for an enterprise-class Cloud Backup solution, you’ll need to understand what you want to achieve and the elements that are important to your organization. It’s definitely more than just backing up your data. There are many software offerings in the marketplace that boast their ability to restore at lightening speeds, but what often appears to be missing in the equation is the inability to provide a guarantee that data is restorable in its full integrity.

Below are some things to consider when looking at cloud data protection solutions:

Your data has to be conditioned constantly to ensure restorability. The following factors can cause data corruption:

  1. Disc malfunction
  2. Disc controller malfunction
  3. Bad sectors on the disc
  4. File system corruption

You should ensure the following data integrity and consistency check functionality is embedded in the software to ensure, data restorability:

  1. Data consistency – this process should ensure that all the data components have been collected sequentially by the data collector at the enterprise customer’s premises before sending the data to offsite storage in the cloud.
  2. Data has arrived offsite before storage – the online data repository should write all the data being backed up offsite to a temporary location, checks and ensures that all the data has arrived before storing it.
  3. Restore validation – this is an actual restore simulation that conducts an actual data restore to a temporary location to ensure data restorability. Think of it as the data restore dry run to prepare for the actual disaster.
  4. Autonomic healing – this automated process will run in the background and scan storage in its entirety to ensure data integrity. Data that leaves your firewall should always be encrypted, the “Autonomic Healing“ process will check links between data blocks and compare digital signatures between different components for inconsistencies. When corrupted data is uncovered, it is noted and a notification is sent to the originating database to resend the portion of that data that was marked corrupted. This ensures that the data is always recoverable in its entirety in case of a disaster.

When you’re shopping for a data protection solution, inquire with your vendor to ensure that the functionality they provide will restore your data, not just during a Disaster Recovery (DR) drill but in the event of an actual disaster (accidently deleted file, damaged hard drive, machine loss or lost site). There’s a lot you can outsource to the cloud, but responsibility isn’t one of them. Make sure you do your research and due diligence before choosing a cloud data protection solution.

For further information ref cloud back up please contact C24 at www.c24.co.uk

Leave a Comment » | Managed Service Hosting, Marketing, Retail IT Solutions | Tagged: , , , , , , , , | Permalink
Posted by david ricketts

Its all about the recovery

April 4, 2012

Enterprises and vendors alike often focus so much on data backup that sometimes they forget about the reason that they backup the data. Customer’s focus should be on data Recovery not data backup.

All vendor solutions in the marketplace backup customer data but it requires real data stewardship to ensure that the data can be restored when needed. Over our 24-year history, Asigra has developed best practices around data stewardship to ensure data restorability if the customer looses a file, disk, machine or the entire facility.

The data has to be conditioned constantly to ensure restorability. The following factors can cause data corruption:

  1. Disc malfunction
  2. Disc controller malfunction
  3. Bad sectors on the disc
  4. Filesystem corruption

Access to metadata is not sufficient because bad sector on a disc can render metadata unreadable.

Following data integrity and consistency check functionality is embedded in Asigra software to ensure, data restorability:

  1. Ensuring data consistency – this process ensures that all the data components have been collected sequentially by the DS-Client (the data collector at the enterprise customer’s premises) before sending the data to the DS-System.
  2. Ensuring all data has arrived offsite before storage – Asigra’s DS-System (the online data repository) writes all the data being backed up offsite to a temporary location, checks and ensures that all the data has arrived before storing it.
  3. Restore validation – this is an actual restore simulation that conducts an actual data restore to a temporary location to ensure data restorability. Think of it as the data restore dry run to prepare for the actual disaster.
  4. Autonomic healing – this automated process runs on the DS-System in the background, scans the entire storage to ensure data integrity. Since the data at the DS-System is encrypted, the “Autonomic Healing“ process checks links between the data blocks, compares digital signatures between different components for inconsistencies. When corrupted data is uncovered, it is marked as corrupted and a notification is sent to the DS-Client to resend the portion of that data that was marked corrupted. This ensures that the data is always recoverable in case of a disaster.
  5. Backing up the DS-Client database to the DS-System – this ensures that if the DS-Client is lost it can easily be rebuilt with the appropriate backup structure.

When you’re shopping for a backup solution, please inquire from your vendor to ensure that the functionality they provide will restore your data, not just during a Disaster Recovery (DR) drill but in the event of an actual disaster (accidently deleted file, damaged hard drive, machine loss or lost site). If you require further information please contact C24 or visit www.c24.co.uk

 

http://www.blogdash.com/blogger_steps/blog_claim/blog_claim.png?s=4e342e624b346cff0fe9bccbc2cce61f

1 Comment | Application Hosting, Managed Service Hosting, Marketing | Tagged: , , , , , , , | Permalink
Posted by david ricketts

Follow

Get every new post delivered to your Inbox.

Join 746 other followers